Firewall Wizards mailing list archives
Re: Intrusion Detection
From: "M. Dodge Mumford" <dmumford () nfr net>
Date: Tue, 14 Apr 1998 18:29:18 -0400 (EDT)
On Tue, 14 Apr 1998, Marcus J. Ranum wrote:
There are really only 2 good reasons I can think of for ID systems: 1) To develop a threat level model as to how often you are attacked 2) To detect clueless people inside your organization who are attacking outside sites
You're forgetting about the twinks who are attacking your internal network, of course. Becuase in all likelihood they're already in the soft, squishy center. ----- Dodge dodge () nfr net PGP key available upon request
Current thread:
- Re: Intrusion Detection, (continued)
- Re: Intrusion Detection tqbf (Apr 14)
- Re: Intrusion Detection Adam Shostack (Apr 14)
- Re: Intrusion Detection Marcus J. Ranum (Apr 14)
- Re: Intrusion Detection Paul D. Robertson (Apr 14)
- Re: Intrusion Detection Adam Shostack (Apr 15)
- Re: Intrusion Detection Marcus J. Ranum (Apr 15)
- Re: Intrusion Detection Marcus J. Ranum (Apr 14)
- Re: Intrusion Detection Aleph One (Apr 14)
- Re: Intrusion Detection Marcus J. Ranum (Apr 14)
- Re: Intrusion Detection Aleph One (Apr 14)
- Re: Intrusion Detection Adam Shostack (Apr 15)
- Re: Intrusion Detection M. Dodge Mumford (Apr 14)
- Re: Intrusion Detection emaiwald (Apr 15)
- Re: Intrusion Detection Marcus J. Ranum (Apr 15)
- Re: Intrusion Detection Marcus J. Ranum (Apr 15)
- Re: Intrusion Detection Aleph One (Apr 15)
- Re: Intrusion Detection emaiwald (Apr 17)
- Re: Intrusion Detection Mark Horn [ Net Ops ] (Apr 20)
- Re: Intrusion Detection Marcus J. Ranum (Apr 20)